Well recently I have some problems with my mikrotik and I hope that somebody can help me.
here is network layout : adslmodem… linksys wrt54 router(DDWRT) … RB450 … interface adsl (and also used one interface for my network, and one for hotspot network).
Problem is (only when reboot or turn on router and also desapear after few hours): my linksys gateway is change status from reachable to unreachable … and also lusing connection when browsing or downloading …
Only way to stop this behavior is to enable and disable that interface (adsl in my case) and this is stop for few minutes and then start again … and after few hours everything start normal (gateway is reachable).
I was change cables, change swich port on linksys, also I try to change ethernet port on RB450, and always have same problem.
Interesting thing is that when is gateway show unreachable is that I can ping this gateway normal from mikrotik or any machine behind mikrotik (and linksys web address is accesable)… only internet traffic stops.
And these days I was thinking that my RB450 is dying I was start to making x86 router based on intel atom board and 1 RouterBOARD 44GV multi port card, and I almost finish with copying configuration with litle changes in IP addresses and im notice that same thing is hapening on this new x86 routerboard.
All this says me that is some problems with my linksys wrt 54g router 8with last ddwrt firmware) … but this is not trouth … if I connect my netbook into linksys it s all working in every port and with every cable.
Im suspicous about hotspot … i think that that his is hapening only after hotspot setup … now I will reset x86 router and carefuly watch when this is hapening …
Both router is latest version 4.11
Here is video http://www.youtube.com/watch?v=YcjbkGuycdE
Also I was thanks for any good advice.
Now Im copying setup from routerboard to x86 machine again (with little difrent IP addresses) and work step by step in this order:
- setup interface ether
- setup ip addresses
- setup routes only one default gateway (and this is the part which desapearing so I wachit all time)
- setup dns
- setup pool
- setup dhcp-server
- setup firewall address-list
- setup firewall nat
- setup radius
10.setup hotspot … and here I was start losing connection with default gateway
I was try setup via terminal in winbox (like wiki says here http://wiki.mikrotik.com/wiki/How_to_make_a_HotSpot_gateway) and also setup in menu IP hotspot and always when setup is done my gateway loosing conectivity.
Does anybody have this situation (my default gateway - router is linksys with dd-wrt sp2)?
Is this is some bug so is beter to downgrade ?
/ip address print detail
/ip route print detail
/ip firewall export
/ip hotspot export
Ok no problems
/ip address print detail
Flags: X - disabled, I - invalid, D - dynamic
0 address=192.168.11.9/24 network=192.168.11.0 broadcast=192.168.11.255
interface=public actual-interface=public
1 address=192.168.8.9/24 network=192.168.8.0 broadcast=192.168.8.255
interface=wan2 actual-interface=wan2
2 address=192.168.12.9/24 network=192.168.12.0 broadcast=192.168.12.255
interface=wan1 actual-interface=wan1
3 address=192.168.3.10/24 network=192.168.3.0 broadcast=192.168.3.255
interface=hotspot actual-interface=hotspot
Route
/ip route print detail
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
0 A S ;;; wan1 amis
dst-address=0.0.0.0/0 gateway=192.168.12.1
gateway-status=192.168.12.1 reachable wan1 check-gateway=arp distance=1
scope=30 target-scope=30
1 ADC dst-address=192.168.3.0/24 pref-src=192.168.3.10 gateway=hotspot
gateway-status=hotspot reachable distance=0 scope=10
2 ADC dst-address=192.168.8.0/24 pref-src=192.168.8.9 gateway=wan2
gateway-status=wan2 reachable distance=0 scope=10
3 ADC dst-address=192.168.11.0/24 pref-src=192.168.11.9 gateway=public
gateway-status=public reachable distance=0 scope=10
4 ADC dst-address=192.168.12.0/24 pref-src=192.168.12.9 gateway=wan1
gateway-status=wan1 reachable distance=0 scope=10
and firewall
/ip firewall layer7-protocol
add comment="" name=edonkey regexp="^[\C5\D4\E3-\E5].\?.\?.\?.\?([\01\02\05\14\
\15\16\18\19\1A\1B\1C !234568@ABCFGHIJKLMNOPQRSTUVWX[`\81\82\90\91\93\96\
\97\98\99\9A\9B\9C\9E\A0\A1\A2\A3\A4]|Y................\?[ -~]|\96....\$)"
add comment="" name=goboogy regexp="<peerplat>|^get /getfilebyhash\\.cgi\\\?|^\
get /queue_register\\.cgi\\\?|^get /getupdowninfo\\.cgi\\\?"
add comment="" name=soribada regexp="^GETMP3\r\
\nFilename|^\01.\?.\?.\?(Q:\\+|Q2:)|^\10[\14-\16]\10[\15-\17].\?.\?.\?.\?\
\$"
add comment="" name=rdp regexp=rdpdr.*cliprdr.*rdpsnd
add comment="" name=gnutella regexp="^(gnd[\01\02]\?.\?.\?\01|gnutella connect\
/[012]\\.[0-9]\r\
\n|get /uri-res/n2r\\\?urn:sha1:|get /.*user-agent: (gtk-gnutella|bearshar\
e|mactella|gnucleus|gnotella|limewire|imesh)|get /.*content-type: applicat\
ion/x-gnutella-packets|giv [0-9]*:[0-9a-f]*/|queue [0-9a-f]* [1-9][0-9]\?[\
0-9]\?\\.[1-9][0-9]\?[0-9]\?\\.[1-9][0-9]\?[0-9]\?\\.[1-9][0-9]\?[0-9]\?:[\
1-9][0-9]\?[0-9]\?[0-9]\?|gnutella.*content-type: application/x-gnutella|.\
..................\?lime)"
add comment="" name=cvs regexp="^BEGIN (AUTH|VERIFICATION|GSSAPI) REQUEST\
\n"
add comment="" name=nbns regexp="\01\10\01|\\)\10\01\01|0\10\01"
add comment="" name=shoutcast regexp=\
"icy [1-5][0-9][0-9] [\t-\r -~]*(content-type:audio|icy-)"
add comment="" name=dns regexp="^.\?.\?.\?.\?[\01\02].\?.\?.\?.\?.\?.\?[\01-\?\
][a-z0-9][\01-\?a-z]*[\02-\06][a-z][a-z][fglmoprstuvz]\?[aeop]\?(um)\?[\01\
-\10\1C][\01\03\04\FF]"
add comment="" name=quake-halflife regexp="^\FF\FF\FF\FFget(info|challenge)"
add comment="" name=poco regexp="^\80\94\
\n\01....\1F\9E"
add comment="" name=ciscovpn regexp="^\01\F4\01\F4"
add comment="" name=x11 regexp="^[lb].\?\0B"
add comment="" name=xboxlive regexp="^X\80........\F3|^\06XN"
add comment="" name=applejuice regexp="^ajprot\r\
\n"
add comment="" name=zmaap regexp="^\1B\D7;H[\01\02]\01\?\01"
add comment="" name=live365 regexp=membername.*session.*player
add comment="" name=rlogin regexp=\
"^[a-z][a-z0-9][a-z0-9]+/[1-9][0-9]\?[0-9]\?[0-9]\?00"
add comment="" name=http regexp="http/(0\\.9|1\\.0|1\\.1) [1-5][0-9][0-9] [\t-\
\r -~]*(connection:|content-type:|content-length:|date:)|post [\t-\r -~]* \
http/[01]\\.[019]"
add comment="" name=sip regexp=\
"^(invite|register|cancel) sip[\t-\r -~]*sip/[0-2]\\.[0-9]"
add comment="" name=pop3 regexp="^(\\+ok |-err )"
add comment="" name=smb regexp="\FFsmb[r%]"
add comment="" name=quake1 regexp="^\80\0C\01quake\03"
add comment="" name=lpd regexp="^(\01[!-~]+|\02[!-~]+\
\n.[\01\02\03][\01-\
\n -~]*|[\03\04][!-~]+[\t-\r]+[a-z][\t-\r -~]*|\05[!-~]+[\t-\r]+([a-z][!-~\
]*[\t-\r]+[1-9][0-9]\?[0-9]\?|root[\t-\r]+[!-~]+).*)\
\n\$"
add comment="" name=mute regexp=\
"^(Public|AES)Key: [0-9a-f]*\
\nEnd(Public|AES)Key\
\n\$"
add comment="" name=ssh regexp="^ssh-[12]\\.[0-9]"
add comment="" name=jabber regexp=\
"<stream:stream[\t-\r ][ -~]*[\t-\r ]xmlns=['\"]jabber"
add comment="" name=bittorrent regexp="^(\13bittorrent protocol|azver\01\$|get\
/scrape\\\?info_hash=)|d1:ad2:id20:|\08'7P\\)[RP]"
add comment="" name=ncp regexp="^(dmdt.*\01.*(\"\"|\11\11|uu)|tncp.*33)"
add comment="" name=tls regexp=\
"^(.\?.\?\16\03.*\16\03|.\?.\?\01\03\01\?.*\0B)"
add comment="" name=directconnect regexp="^(\\\$mynick |\\\$lock |\\\$key )"
add comment="" name=netbios regexp="\81.\?.\?.[A-P][A-P][A-P][A-P][A-P][A-P][A\
-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][\
A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P][A-P]\
[A-P][A-P][A-P][A-P]"
add comment="" name=tftp regexp="^(\01|\02)[ -~]*(netascii|octet|mail)"
add comment="" name=subspace regexp="^\01....\11\10........\01\$"
add comment="" name=hotline regexp="^....................TRTPHOTL\01\02"
add comment="" name=doom3 regexp="^\FF\FFchallenge"
add comment="" name=ftp regexp="^220[\t-\r -~]*ftp"
add comment="" name=kugoo regexp="^1..\8E"
add comment="" name=tsp regexp=\
"^[\01-\13\16-\$]\01.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?[ -~]+"
add comment="" name=battlefield1942 regexp="^\01\11\10\\|\F8\02\10@\06"
add comment="" name=ssdp regexp="^notify[\t-\r ]\\*[\t-\r ]http/1\\.1[\t-\r -~\
]*ssdp:(alive|byebye)|^m-search[\t-\r ]\\*[\t-\r ]http/1\\.1[\t-\r -~]*ssd\
p:discover"
add comment="" name=imap regexp="^(\\* ok|a[0-9]+ noop)"
add comment="" name=ares regexp="^\03[]Z].\?.\?\05\$"
add comment="" name=fasttrack regexp="^get (/.download/[ -~]*|/.supernode[ -~]\
|/.status[ -~]|/.network[ -~]*|/.files|/.hash=[0-9a-f]*/[ -~]*) http/1.1|u\
ser-agent: kazaa|x-kazaa(-username|-network|-ip|-supernodeip|-xferid|-xfer\
uid|tag)|^give [0-9][0-9][0-9][0-9][0-9][0-9][0-9][0-9]\?[0-9]\?[0-9]\?"
add comment="" name=qq regexp="^.\?\02.+\03\$"
add comment="" name=100bao regexp="^\01\01\05\
\n"
add comment="" name=aim regexp=\
"^(\\*[\01\02].*\03\0B|\\*\01.\?.\?.\?.\?\01)|flapon|toc_signon.*0x"
add comment="" name=unknown regexp=.
add comment="" name=msn-filetransfer regexp=\
"^(ver [ -~]*msnftp\r\
\nver msnftp\r\
\nusr|method msnmsgr:)"
add comment="" name=yahoo regexp=\
"^(ymsg|ypns|yhoo).\?.\?.\?.\?.\?.\?.\?[lwt].*\C0\80"
add comment="" name=validcertssl regexp="^(.\?.\?\16\03.*\16\03|.\?.\?\01\03\
\01\?.*\0B).*(thawte|equifax secure|rsa data security, inc|verisign, inc|g\
te cybertrust root|entrust\\.net limited)"
add comment="" name=ntp regexp="^([\13\1B#\D3\DB\E3]|[\14\1C\$].......\?.\?.\?\
.\?.\?.\?.\?.\?.\?[\C6-\FF])"
add comment="" name=gnucleuslan regexp=\
"gnuclear connect/[\t-\r -~]*user-agent: gnucleus [\t-\r -~]*lan:"
add comment="" name=vnc regexp="^rfb 00[1-9]\\.00[0-9]\
\n\$"
add comment="" name=bgp regexp=\
"^\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF\FF..\?\01[\03\04]"
add comment="" name=tesla regexp="\03\9A\89\"111\\.00 Beta |\E2<i\1E\1C\E9"
add comment="" name=openft regexp="x-openftalias: [-)(0-9a-z ~.]"
add comment="" name=h323 regexp=\
"^\03..\?\08...\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?\05"
add comment="" name=finger regexp=\
"^[a-z][a-z0-9\\-_]+|login: [\t-\r -~]* name: [\t-\r -~]* Directory:"
add comment="" name=ident regexp="^[1-9][0-9]\?[0-9]\?[0-9]\?[0-9]\?[\t-\r]*,[\
\t-\r]*[1-9][0-9]\?[0-9]\?[0-9]\?[0-9]\?(\r\
\n|[\r\
\n])\?\$"
add comment="" name=gkrellm regexp="^gkrellm [23].[0-9].[0-9]\
\n\$"
add comment="" name=hddtemp regexp=\
"^\\|/dev/[a-z][a-z][a-z]\\|[0-9a-z]*\\|[0-9][0-9]\\|[cfk]\\|"
add comment="" name=socks regexp="\05[\01-\08]*\05[\01-\08]\?.*\05[\01-\03][\
\01\03].*\05[\01-\08]\?[\01\03]"
add comment="" name=biff regexp="^[a-z][a-z0-9]+@[1-9][0-9]+\$"
add comment="" name=dhcp regexp="^[\01\02][\01- ]\06.*c\82sc"
add comment="" name=smtp regexp="^220[\t-\r -~]* (e\?smtp|simple mail)"
add comment="" name=ipp regexp=ipp://
add comment="" name=msnmessenger regexp="ver [0-9]+ msnp[1-9][0-9]\? [\t-\r -~\
]*cvr0\r\
\n\$|usr 1 [!-~]+ [0-9. ]+\r\
\n\$|ans 1 [!-~]+ [0-9. ]+\r\
\n\$"
add comment="" name=irc regexp="^(nick[\t-\r -~]*user[\t-\r -~]*:|user[\t-\r -\
~]*:[\02-\r -~]*nick[\t-\r -~]*\r\
\n)"
add comment="" name=gopher regexp="^[\t-\r]*[1-9,+tgi][\t-\r -~]*\t[\t-\r -~]*\
\t[a-z0-9.]*\\.[a-z][a-z].\?.\?\t[1-9]"
add comment="" name=telnet regexp="^\FF[\FB-\FE].\FF[\FB-\FE].\FF[\FB-\FE]"
add comment="" name=snmp regexp="^\02\01\04.+([\A0-\A3]\02[\01-\04].\?.\?.\?.\
\?\02\01.\?\02\01.\?0|\A4\06.+@\04.\?.\?.\?.\?\02\01.\?\02\01.\?C)"
add comment="" name=nntp regexp=\
"^(20[01][\t-\r -~]*AUTHINFO USER|20[01][\t-\r -~]*news)"
add comment="" name=aimwebcontent regexp=user-agent:aim/
add comment="" name=rtsp regexp="rtsp/1.0 200 ok"
add comment="" name=skypeout regexp="^(\01.\?.\?.\?.\?.\?.\?.\?.\?\01|\02.\?.\
\?.\?.\?.\?.\?.\?.\?\02|\03.\?.\?.\?.\?.\?.\?.\?.\?\03|\04.\?.\?.\?.\?.\?.\
\?.\?.\?\04|\05.\?.\?.\?.\?.\?.\?.\?.\?\05|\06.\?.\?.\?.\?.\?.\?.\?.\?\06|\
\07.\?.\?.\?.\?.\?.\?.\?.\?\07|\08.\?.\?.\?.\?.\?.\?.\?.\?\08|\t.\?.\?.\?.\
\?.\?.\?.\?.\?\t|\
\n.\?.\?.\?.\?.\?.\?.\?.\?\
\n|\0B.\?.\?.\?.\?.\?.\?.\?.\?\0B|\0C.\?.\?.\?.\?.\?.\?.\?.\?\0C|\r.\?.\?.\
\?.\?.\?.\?.\?.\?\r|\0E.\?.\?.\?.\?.\?.\?.\?.\?\0E|\0F.\?.\?.\?.\?.\?.\?.\
\?.\?\0F|\10.\?.\?.\?.\?.\?.\?.\?.\?\10|\11.\?.\?.\?.\?.\?.\?.\?.\?\11|\12\
.\?.\?.\?.\?.\?.\?.\?.\?\12|\13.\?.\?.\?.\?.\?.\?.\?.\?\13|\14.\?.\?.\?.\?\
.\?.\?.\?.\?\14|\15.\?.\?.\?.\?.\?.\?.\?.\?\15|\16.\?.\?.\?.\?.\?.\?.\?.\?\
\16|\17.\?.\?.\?.\?.\?.\?.\?.\?\17|\18.\?.\?.\?.\?.\?.\?.\?.\?\18|\19.\?.\
\?.\?.\?.\?.\?.\?.\?\19|\1A.\?.\?.\?.\?.\?.\?.\?.\?\1A|\1B.\?.\?.\?.\?.\?.\
\?.\?.\?\1B|\1C.\?.\?.\?.\?.\?.\?.\?.\?\1C|\1D.\?.\?.\?.\?.\?.\?.\?.\?\1D|\
\1E.\?.\?.\?.\?.\?.\?.\?.\?\1E|\1F.\?.\?.\?.\?.\?.\?.\?.\?\1F| .\?.\?.\?.\
\?.\?.\?.\?.\? |!.\?.\?.\?.\?.\?.\?.\?.\?!|\".\?.\?.\?.\?.\?.\?.\?.\?\"|#.\
\?.\?.\?.\?.\?.\?.\?.\?#|\\\$.\?.\?.\?.\?.\?.\?.\?.\?\\\$|%.\?.\?.\?.\?.\?\
.\?.\?.\?%|&.\?.\?.\?.\?.\?.\?.\?.\?&|'.\?.\?.\?.\?.\?.\?.\?.\?'|\\(.\?.\?\
.\?.\?.\?.\?.\?.\?\\(|\\).\?.\?.\?.\?.\?.\?.\?.\?\\)|\\*.\?.\?.\?.\?.\?.\?\
.\?.\?\\*|\\+.\?.\?.\?.\?.\?.\?.\?.\?\\+|,.\?.\?.\?.\?.\?.\?.\?.\?,|-.\?.\
\?.\?.\?.\?.\?.\?.\?-|\\..\?.\?.\?.\?.\?.\?.\?.\?\\.|/.\?.\?.\?.\?.\?.\?.\
\?.\?/|0.\?.\?.\?.\?.\?.\?.\?.\?0|1.\?.\?.\?.\?.\?.\?.\?.\?1|2.\?.\?.\?.\?\
.\?.\?.\?.\?2|3.\?.\?.\?.\?.\?.\?.\?.\?3|4.\?.\?.\?.\?.\?.\?.\?.\?4|5.\?.\
\?.\?.\?.\?.\?.\?.\?5|6.\?.\?.\?.\?.\?.\?.\?.\?6|7.\?.\?.\?.\?.\?.\?.\?.\?\
7|8.\?.\?.\?.\?.\?.\?.\?.\?8|9.\?.\?.\?.\?.\?.\?.\?.\?9|:.\?.\?.\?.\?.\?.\
\?.\?.\?:|;.\?.\?.\?.\?.\?.\?.\?.\?;|<.\?.\?.\?.\?.\?.\?.\?.\?<|=.\?.\?.\?\
.\?.\?.\?.\?.\?=|>.\?.\?.\?.\?.\?.\?.\?.\?>|\\\?.\?.\?.\?.\?.\?.\?.\?.\?\\\
\?|@.\?.\?.\?.\?.\?.\?.\?.\?@|A.\?.\?.\?.\?.\?.\?.\?.\?A|B.\?.\?.\?.\?.\?.\
\?.\?.\?B|C.\?.\?.\?.\?.\?.\?.\?.\?C|D.\?.\?.\?.\?.\?.\?.\?.\?D|E.\?.\?.\?\
.\?.\?.\?.\?.\?E|F.\?.\?.\?.\?.\?.\?.\?.\?F|G.\?.\?.\?.\?.\?.\?.\?.\?G|H.\
\?.\?.\?.\?.\?.\?.\?.\?H|I.\?.\?.\?.\?.\?.\?.\?.\?I|J.\?.\?.\?.\?.\?.\?.\?\
.\?J|K.\?.\?.\?.\?.\?.\?.\?.\?K|L.\?.\?.\?.\?.\?.\?.\?.\?L|M.\?.\?.\?.\?.\
\?.\?.\?.\?M|N.\?.\?.\?.\?.\?.\?.\?.\?N|O.\?.\?.\?.\?.\?.\?.\?.\?O|P.\?.\?\
.\?.\?.\?.\?.\?.\?P|Q.\?.\?.\?.\?.\?.\?.\?.\?Q|R.\?.\?.\?.\?.\?.\?.\?.\?R|\
S.\?.\?.\?.\?.\?.\?.\?.\?S|T.\?.\?.\?.\?.\?.\?.\?.\?T|U.\?.\?.\?.\?.\?.\?.\
\?.\?U|V.\?.\?.\?.\?.\?.\?.\?.\?V|W.\?.\?.\?.\?.\?.\?.\?.\?W|X.\?.\?.\?.\?\
.\?.\?.\?.\?X|Y.\?.\?.\?.\?.\?.\?.\?.\?Y|Z.\?.\?.\?.\?.\?.\?.\?.\?Z|\\[.\?\
.\?.\?.\?.\?.\?.\?.\?\\[|\\].\?.\?.\?.\?.\?.\?.\?.\?\\]|\\].\?.\?.\?.\?.\?\
.\?.\?.\?\\]|\\^.\?.\?.\?.\?.\?.\?.\?.\?\\^|_.\?.\?.\?.\?.\?.\?.\?.\?_|`.\
\?.\?.\?.\?.\?.\?.\?.\?`|a.\?.\?.\?.\?.\?.\?.\?.\?a|b.\?.\?.\?.\?.\?.\?.\?\
.\?b|c.\?.\?.\?.\?.\?.\?.\?.\?c|d.\?.\?.\?.\?.\?.\?.\?.\?d|e.\?.\?.\?.\?.\
\?.\?.\?.\?e|f.\?.\?.\?.\?.\?.\?.\?.\?f|g.\?.\?.\?.\?.\?.\?.\?.\?g|h.\?.\?\
.\?.\?.\?.\?.\?.\?h|i.\?.\?.\?.\?.\?.\?.\?.\?i|j.\?.\?.\?.\?.\?.\?.\?.\?j|\
k.\?.\?.\?.\?.\?.\?.\?.\?k|l.\?.\?.\?.\?.\?.\?.\?.\?l|m.\?.\?.\?.\?.\?.\?.\
\?.\?m|n.\?.\?.\?.\?.\?.\?.\?.\?n|o.\?.\?.\?.\?.\?.\?.\?.\?o|p.\?.\?.\?.\?\
.\?.\?.\?.\?p|q.\?.\?.\?.\?.\?.\?.\?.\?q|r.\?.\?.\?.\?.\?.\?.\?.\?r|s.\?.\
\?.\?.\?.\?.\?.\?.\?s|t.\?.\?.\?.\?.\?.\?.\?.\?t|u.\?.\?.\?.\?.\?.\?.\?.\?\
u|v.\?.\?.\?.\?.\?.\?.\?.\?v|w.\?.\?.\?.\?.\?.\?.\?.\?w|x.\?.\?.\?.\?.\?.\
\?.\?.\?x|y.\?.\?.\?.\?.\?.\?.\?.\?y|z.\?.\?.\?.\?.\?.\?.\?.\?z|\\{.\?.\?.\
\?.\?.\?.\?.\?.\?\\{|\\|.\?.\?.\?.\?.\?.\?.\?.\?\\||\\}.\?.\?.\?.\?.\?.\?.\
\?.\?\\}|~.\?.\?.\?.\?.\?.\?.\?.\?~|\7F.\?.\?.\?.\?.\?.\?.\?.\?\7F|\80.\?.\
\?.\?.\?.\?.\?.\?.\?\80|\81.\?.\?.\?.\?.\?.\?.\?.\?\81|\82.\?.\?.\?.\?.\?.\
\?.\?.\?\82|\83.\?.\?.\?.\?.\?.\?.\?.\?\83|\84.\?.\?.\?.\?.\?.\?.\?.\?\84|\
\85.\?.\?.\?.\?.\?.\?.\?.\?\85|\86.\?.\?.\?.\?.\?.\?.\?.\?\86|\87.\?.\?.\?\
.\?.\?.\?.\?.\?\87|\88.\?.\?.\?.\?.\?.\?.\?.\?\88|\89.\?.\?.\?.\?.\?.\?.\?\
.\?\89|\8A.\?.\?.\?.\?.\?.\?.\?.\?\8A|\8B.\?.\?.\?.\?.\?.\?.\?.\?\8B|\8C.\
\?.\?.\?.\?.\?.\?.\?.\?\8C|\8D.\?.\?.\?.\?.\?.\?.\?.\?\8D|\8E.\?.\?.\?.\?.\
\?.\?.\?.\?\8E|\8F.\?.\?.\?.\?.\?.\?.\?.\?\8F|\90.\?.\?.\?.\?.\?.\?.\?.\?\
\90|\91.\?.\?.\?.\?.\?.\?.\?.\?\91|\92.\?.\?.\?.\?.\?.\?.\?.\?\92|\93.\?.\
\?.\?.\?.\?.\?.\?.\?\93|\94.\?.\?.\?.\?.\?.\?.\?.\?\94|\95.\?.\?.\?.\?.\?.\
\?.\?.\?\95|\96.\?.\?.\?.\?.\?.\?.\?.\?\96|\97.\?.\?.\?.\?.\?.\?.\?.\?\97|\
\98.\?.\?.\?.\?.\?.\?.\?.\?\98|\99.\?.\?.\?.\?.\?.\?.\?.\?\99|\9A.\?.\?.\?\
.\?.\?.\?.\?.\?\9A|\9B.\?.\?.\?.\?.\?.\?.\?.\?\9B|\9C.\?.\?.\?.\?.\?.\?.\?\
.\?\9C|\9D.\?.\?.\?.\?.\?.\?.\?.\?\9D|\9E.\?.\?.\?.\?.\?.\?.\?.\?\9E|\9F.\
\?.\?.\?.\?.\?.\?.\?.\?\9F|\A0.\?.\?.\?.\?.\?.\?.\?.\?\A0|\A1.\?.\?.\?.\?.\
\?.\?.\?.\?\A1|\A2.\?.\?.\?.\?.\?.\?.\?.\?\A2|\A3.\?.\?.\?.\?.\?.\?.\?.\?\
\A3|\A4.\?.\?.\?.\?.\?.\?.\?.\?\A4|\A5.\?.\?.\?.\?.\?.\?.\?.\?\A5|\A6.\?.\
\?.\?.\?.\?.\?.\?.\?\A6|\A7.\?.\?.\?.\?.\?.\?.\?.\?\A7|\A8.\?.\?.\?.\?.\?.\
\?.\?.\?\A8|\A9.\?.\?.\?.\?.\?.\?.\?.\?\A9|\AA.\?.\?.\?.\?.\?.\?.\?.\?\AA|\
\AB.\?.\?.\?.\?.\?.\?.\?.\?\AB|\AC.\?.\?.\?.\?.\?.\?.\?.\?\AC|\AD.\?.\?.\?\
.\?.\?.\?.\?.\?\AD|\AE.\?.\?.\?.\?.\?.\?.\?.\?\AE|\AF.\?.\?.\?.\?.\?.\?.\?\
.\?\AF|\B0.\?.\?.\?.\?.\?.\?.\?.\?\B0|\B1.\?.\?.\?.\?.\?.\?.\?.\?\B1|\B2.\
\?.\?.\?.\?.\?.\?.\?.\?\B2|\B3.\?.\?.\?.\?.\?.\?.\?.\?\B3|\B4.\?.\?.\?.\?.\
\?.\?.\?.\?\B4|\B5.\?.\?.\?.\?.\?.\?.\?.\?\B5|\B6.\?.\?.\?.\?.\?.\?.\?.\?\
\B6|\B7.\?.\?.\?.\?.\?.\?.\?.\?\B7|\B8.\?.\?.\?.\?.\?.\?.\?.\?\B8|\B9.\?.\
\?.\?.\?.\?.\?.\?.\?\B9|\BA.\?.\?.\?.\?.\?.\?.\?.\?\BA|\BB.\?.\?.\?.\?.\?.\
\?.\?.\?\BB|\BC.\?.\?.\?.\?.\?.\?.\?.\?\BC|\BD.\?.\?.\?.\?.\?.\?.\?.\?\BD|\
\BE.\?.\?.\?.\?.\?.\?.\?.\?\BE|\BF.\?.\?.\?.\?.\?.\?.\?.\?\BF|\C0.\?.\?.\?\
.\?.\?.\?.\?.\?\C0|\C1.\?.\?.\?.\?.\?.\?.\?.\?\C1|\C2.\?.\?.\?.\?.\?.\?.\?\
.\?\C2|\C3.\?.\?.\?.\?.\?.\?.\?.\?\C3|\C4.\?.\?.\?.\?.\?.\?.\?.\?\C4|\C5.\
\?.\?.\?.\?.\?.\?.\?.\?\C5|\C6.\?.\?.\?.\?.\?.\?.\?.\?\C6|\C7.\?.\?.\?.\?.\
\?.\?.\?.\?\C7|\C8.\?.\?.\?.\?.\?.\?.\?.\?\C8|\C9.\?.\?.\?.\?.\?.\?.\?.\?\
\C9|\CA.\?.\?.\?.\?.\?.\?.\?.\?\CA|\CB.\?.\?.\?.\?.\?.\?.\?.\?\CB|\CC.\?.\
\?.\?.\?.\?.\?.\?.\?\CC|\CD.\?.\?.\?.\?.\?.\?.\?.\?\CD|\CE.\?.\?.\?.\?.\?.\
\?.\?.\?\CE|\CF.\?.\?.\?.\?.\?.\?.\?.\?\CF|\D0.\?.\?.\?.\?.\?.\?.\?.\?\D0|\
\D1.\?.\?.\?.\?.\?.\?.\?.\?\D1|\D2.\?.\?.\?.\?.\?.\?.\?.\?\D2|\D3.\?.\?.\?\
.\?.\?.\?.\?.\?\D3|\D4.\?.\?.\?.\?.\?.\?.\?.\?\D4|\D5.\?.\?.\?.\?.\?.\?.\?\
.\?\D5|\D6.\?.\?.\?.\?.\?.\?.\?.\?\D6|\D7.\?.\?.\?.\?.\?.\?.\?.\?\D7|\D8.\
\?.\?.\?.\?.\?.\?.\?.\?\D8|\D9.\?.\?.\?.\?.\?.\?.\?.\?\D9|\DA.\?.\?.\?.\?.\
\?.\?.\?.\?\DA|\DB.\?.\?.\?.\?.\?.\?.\?.\?\DB|\DC.\?.\?.\?.\?.\?.\?.\?.\?\
\DC|\DD.\?.\?.\?.\?.\?.\?.\?.\?\DD|\DE.\?.\?.\?.\?.\?.\?.\?.\?\DE|\DF.\?.\
\?.\?.\?.\?.\?.\?.\?\DF|\E0.\?.\?.\?.\?.\?.\?.\?.\?\E0|\E1.\?.\?.\?.\?.\?.\
\?.\?.\?\E1|\E2.\?.\?.\?.\?.\?.\?.\?.\?\E2|\E3.\?.\?.\?.\?.\?.\?.\?.\?\E3|\
\E4.\?.\?.\?.\?.\?.\?.\?.\?\E4|\E5.\?.\?.\?.\?.\?.\?.\?.\?\E5|\E6.\?.\?.\?\
.\?.\?.\?.\?.\?\E6|\E7.\?.\?.\?.\?.\?.\?.\?.\?\E7|\E8.\?.\?.\?.\?.\?.\?.\?\
.\?\E8|\E9.\?.\?.\?.\?.\?.\?.\?.\?\E9|\EA.\?.\?.\?.\?.\?.\?.\?.\?\EA|\EB.\
\?.\?.\?.\?.\?.\?.\?.\?\EB|\EC.\?.\?.\?.\?.\?.\?.\?.\?\EC|\ED.\?.\?.\?.\?.\
\?.\?.\?.\?\ED|\EE.\?.\?.\?.\?.\?.\?.\?.\?\EE|\EF.\?.\?.\?.\?.\?.\?.\?.\?\
\EF|\F0.\?.\?.\?.\?.\?.\?.\?.\?\F0|\F1.\?.\?.\?.\?.\?.\?.\?.\?\F1|\F2.\?.\
\?.\?.\?.\?.\?.\?.\?\F2|\F3.\?.\?.\?.\?.\?.\?.\?.\?\F3|\F4.\?.\?.\?.\?.\?.\
\?.\?.\?\F4|\F5.\?.\?.\?.\?.\?.\?.\?.\?\F5|\F6.\?.\?.\?.\?.\?.\?.\?.\?\F6|\
\F7.\?.\?.\?.\?.\?.\?.\?.\?\F7|\F8.\?.\?.\?.\?.\?.\?.\?.\?\F8|\F9.\?.\?.\?\
.\?.\?.\?.\?.\?\F9|\FA.\?.\?.\?.\?.\?.\?.\?.\?\FA|\FB.\?.\?.\?.\?.\?.\?.\?\
.\?\FB|\FC.\?.\?.\?.\?.\?.\?.\?.\?\FC|\FD.\?.\?.\?.\?.\?.\?.\?.\?\FD|\FE.\
\?.\?.\?.\?.\?.\?.\?.\?\FE|\FF.\?.\?.\?.\?.\?.\?.\?.\?\FF)"
add comment="" name=skypetoskype regexp="^..\02............."
add comment="" name=counterstrike-source regexp=\
"^\FF\FF\FF\FF.*cstrikeCounter-Strike"
add comment="" name=halflife2-deathmatch regexp=\
"^\FF\FF\FF\FF.*hl2mpDeathmatch"
add comment="" name=freenet regexp="^\01[\08\t][\03\04]"
add comment="" name=battlefield2 regexp="^(\11 \01...\?\11|\FE\FD.\?.\?.\?.\?.\
\?.\?(\14\01\06|\FF\FF\FF))|[]\01].\?battlefield2"
add comment="" name=napster regexp="^(.[\02\06][!-~]+ [!-~]+ [0-9][0-9]\?[0-9]\
\?[0-9]\?[0-9]\? \"[\t-\r -~]+\" ([0-9]|10)|1(send|get)[!-~]+ \"[\t-\r -~]\
+\")"
add comment="" name=soulseek regexp=\
"^(\05..\?|.\01.[ -~]+\01F..\?.\?.\?.\?.\?.\?.\?)\$"
add comment="" name=xunlei regexp="^[()]...\?.\?.\?(reg|get|query)"
add comment="" name=ssl regexp=\
"^(.\?.\?\16\03.*\16\03|.\?.\?\01\03\01\?.*\0B)"
add comment="" name=citrix regexp="2&\85\92X"
add comment="" name=whois regexp="^[ !-~]+\r\
\n\$"
add comment="" name=dayofdefeat-source regexp=\
"^\FF\FF\FF\FF.*dodDay of Defeat"
add comment="" name=teamspeak regexp="^\F4\BE\03.*teamspeak"
add comment="" name=worldofwarcraft regexp="^\06\EC\01"
add comment="" name=ventrilo regexp="^..\?v\\\$\CF"
add comment="" name=http-rtsp regexp="^(get[\t-\r -~]* Accept: application/x-r\
tsp-tunnelled|http/(0\\.9|1\\.0|1\\.1) [1-5][0-9][0-9] [\t-\r -~]*a=contro\
l:rtsp://)"
add comment="" name=thecircle regexp=\
"^t\03ni.\?[\01-\06]\?t[\01-\05]s[\
\n\0B](glob|who are you\$|query data)"
add comment="" name=uucp regexp="^\10here="
add comment="" name=pcanywhere regexp="^(nq|st)\$"
add comment="" name=subversion regexp="^\\( success \\( 1 2 \\("
add comment="" name=imesh regexp="^(post[\t-\r -~]*<PasswordHash>.............\
...................</PasswordHash><ClientVer>|4\80\?\r\?\FC\FF\04|get[\t-\
\r -~]*Host: imsh\\.download-prod\\.musicnet\\.com|\02(\01|\02)\83.\?.\?.\
\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?.\?\
.\?\02(\01|\02)\83)"
add comment="" name=cimd regexp="\02[0-4][0-9]:[0-9]+.*\03\$"
add comment="" name=mohaa regexp="^\FF\FF\FF\FFgetstatus\
\n"
add comment="" name=stun regexp="^[\01\02]................\?\$"
add comment="" name=tor regexp=TOR1.*<identity>
add comment="" name=radmin regexp="^\01\01(\08\08|\1B\1B)\$"
add comment="" name=unset regexp=.
add comment="" name=chikka regexp="^CTPv1.[123] Kamusta.*\r\
\n\$"
add comment="" name=replaytv-ivs regexp="^(get /ivs-IVSGetFileChunk|http/(0\\.\
9|1\\.0|1\\.1) [1-5][0-9][0-9] [\t-\r -~]*#####REPLAY_CHUNK_START#####)"
add comment="" name=armagetron regexp=YCLC_E|CYEL
/ip firewall address-list
add address=208.65.152.0/21 comment="" disabled=no list=Youtube
add address=72.14.192.0/18 comment="" disabled=no list=Youtube
add address=74.125.0.0/16 comment="" disabled=no list=Youtube
add address=62.67.46.0/24 comment="" disabled=no list=rapidshare-host
add address=62.67.57.0/24 comment="" disabled=no list=rapidshare-host
add address=64.214.225.0/24 comment="" disabled=no list=rapidshare-host
add address=64.215.245.0/24 comment="" disabled=no list=rapidshare-host
add address=80.129.35.0/24 comment="" disabled=no list=rapidshare-host
add address=80.231.56.0/24 comment="" disabled=no list=rapidshare-host
add address=80.239.151.0/24 comment="" disabled=no list=rapidshare-host
add address=80.239.159.0/24 comment="" disabled=no list=rapidshare-host
add address=80.239.226.0/24 comment="" disabled=no list=rapidshare-host
add address=80.239.236.0/24 comment="" disabled=no list=rapidshare-host
add address=82.129.35.0/24 comment="" disabled=no list=rapidshare-host
add address=82.129.36.0/24 comment="" disabled=no list=rapidshare-host
add address=82.129.39.0/24 comment="" disabled=no list=rapidshare-host
add address=195.122.131.0/24 comment="" disabled=no list=rapidshare-host
add address=195.219.1.0/24 comment="" disabled=no list=rapidshare-host
add address=206.57.14.0/24 comment="" disabled=no list=rapidshare-host
add address=207.138.168.0/24 comment="" disabled=no list=rapidshare-host
add address=212.162.2.0/24 comment="" disabled=no list=rapidshare-host
add address=212.162.63.0/24 comment="" disabled=no list=rapidshare-host
add address=208.65.153.0/24 comment="" disabled=no list=Youtube
add address=208.65.0.0/16 comment="" disabled=no list=Youtube
add address=208.65.153.248/29 comment="" disabled=no list=Youtube
add address=208.65.152.0/22 comment="" disabled=no list=Youtube
add address=74.125.15.0/24 comment="" disabled=no list=Youtube
add address=208.117.224.0/24 comment="" disabled=no list=Youtube
add address=208.117.225.0/24 comment="" disabled=no list=Youtube
add address=208.117.228.0/24 comment="" disabled=no list=Youtube
add address=208.117.229.0/24 comment="" disabled=no list=Youtube
add address=208.117.232.0/24 comment="" disabled=no list=Youtube
add address=208.117.233.0/24 comment="" disabled=no list=Youtube
add address=208.117.234.0/24 comment="" disabled=no list=Youtube
add address=208.117.238.0/24 comment="" disabled=no list=Youtube
add address=208.65.152.0/24 comment="" disabled=no list=Youtube
add address=208.65.153.0/24 comment="" disabled=no list=Youtube
add address=208.65.154.0/24 comment="" disabled=no list=Youtube
add address=64.15.112.0/20 comment="" disabled=no list=Youtube
add address=208.117.236.0/24 comment="" disabled=no list=Youtube
add address=74.125.96.0/19 comment="" disabled=no list=Youtube
add address=72.14.221.0/24 comment="" disabled=no list=Youtube
add address=84.53.128.0/18 comment=Redtube disabled=no list=Youtube
add address=87.248.192.0/19 comment=Youporn disabled=no list=Youtube
add address=216.155.128.0/19 comment=Redtube disabled=no list=Youtube
add address=208.73.208.0/21 comment=Redtube disabled=no list=Youtube
add address=66.55.140.0/23 comment=Redtube disabled=no list=Youtube
add address=74.125.208.0/24 comment="" disabled=no list=Youtube
add address=89.185.228.175 comment="" disabled=no list=rapidshare-host
add address=188.72.213.194 comment="" disabled=no list=rapidshare-host
add address=124.172.111.8 comment="" disabled=no list=Youtube
add address=208.117.241.221 comment="" disabled=no list=Youtube
add address=195.27.182.24 comment="" disabled=no list=Youtube
add address=74.125.10.101 comment="" disabled=no list=Youtube
add address=69.73.140.179 comment="" disabled=no list=Youtube
add address=74.125.8.215 comment="" disabled=no list=Youtube
add address=174.132.175.34 comment="" disabled=no list=rapidshare-host
add address=74.125.10.82 comment="" disabled=no list=Youtube
add address=74.125.8.153 comment="" disabled=no list=Youtube
add address=74.125.8.82 comment="" disabled=no list=Youtube
add address=74.125.10.150 comment="" disabled=no list=Youtube
add address=74.125.13.210 comment="" disabled=no list=Youtube
add address=74.125.103.17 comment="" disabled=no list=Youtube
add address=74.125.15.34 comment="" disabled=no list=Youtube
add address=74.125.8.33 comment="" disabled=no list=Youtube
add address=74.125.10.93 comment="" disabled=no list=Youtube
add address=173.194.9.145 comment="" disabled=no list=Youtube
add address=173.194.9.215 comment="" disabled=no list=Youtube
add address=173.194.9.218 comment="" disabled=no list=Youtube
add address=173.194.9.21 comment="" disabled=no list=Youtube
add address=74.125.170.23 comment="" disabled=no list=Youtube
add address=74.125.100.90 comment="" disabled=no list=Youtube
add address=74.125.4.154 comment="" disabled=no list=Youtube
add address=74.125.13.36 comment="" disabled=no list=Youtube
add address=173.194.6.21 comment="" disabled=no list=Youtube
add address=213.202.100.136 comment="" disabled=no list=Youtube
add address=74.125.10.16 comment="" disabled=no list=Youtube
add address=8.12.162.42 comment="" disabled=no list=rapidshare-host
add address=81.223.254.10 comment="" disabled=no list=Youtube
add address=64.22.120.174 comment="" disabled=no list=Youtube
add address=174.123.132.210 comment="" disabled=no list=Youtube
add address=194.221.68.20 comment="" disabled=no list=Youtube
add address=74.125.170.163 comment="" disabled=no list=Youtube
add address=74.125.97.99 comment="" disabled=no list=Youtube
add address=173.194.9.97 comment="" disabled=no list=Youtube
add address=74.125.100.83 comment="" disabled=no list=Youtube
add address=206.132.73.29 comment="" disabled=no list=Youtube
add address=74.125.10.217 comment="" disabled=no list=Youtube
add address=74.125.8.160 comment="" disabled=no list=Youtube
add address=173.194.9.95 comment="" disabled=no list=Youtube
add address=74.125.170.24 comment="" disabled=no list=Youtube
add address=74.125.170.164 comment="" disabled=no list=Youtube
add address=62.67.50.149 comment="" disabled=no list=rapidshare-host
add address=80.239.152.149 comment="" disabled=no list=rapidshare-host
add address=74.125.10.157 comment="" disabled=no list=Youtube
add address=74.125.99.161 comment="" disabled=no list=Youtube
add address=74.125.8.22 comment="" disabled=no list=Youtube
add address=74.125.97.17 comment="" disabled=no list=Youtube
add address=74.125.97.83 comment="" disabled=no list=Youtube
add address=74.125.99.165 comment="" disabled=no list=Youtube
add address=74.125.170.25 comment="" disabled=no list=Youtube
add address=194.221.68.37 comment="" disabled=no list=Youtube
add address=194.221.68.32 comment="" disabled=no list=Youtube
add address=74.125.170.100 comment="" disabled=no list=Youtube
add address=173.194.6.176 comment="" disabled=no list=Youtube
add address=74.125.170.17 comment="" disabled=no list=Youtube
add address=74.125.170.144 comment="" disabled=no list=Youtube
add address=74.125.97.31 comment="" disabled=no list=Youtube
add address=74.125.10.145 comment="" disabled=no list=Youtube
add address=173.194.6.185 comment="" disabled=no list=Youtube
add address=74.125.8.34 comment="" disabled=no list=Youtube
add address=173.194.18.241 comment="" disabled=no list=Youtube
add address=74.125.97.97 comment="" disabled=no list=Youtube
add address=173.194.6.179 comment="" disabled=no list=Youtube
add address=208.117.241.209 comment="" disabled=no list=Youtube
add address=173.194.6.244 comment="" disabled=no list=Youtube
add address=74.125.99.217 comment="" disabled=no list=Youtube
add address=173.194.18.233 comment="" disabled=no list=Youtube
add address=173.194.18.212 comment="" disabled=no list=Youtube
add address=74.125.8.35 comment="" disabled=no list=Youtube
add address=173.194.18.206 comment="" disabled=no list=Youtube
add address=74.125.10.158 comment="" disabled=no list=Youtube
add address=173.194.18.213 comment="" disabled=no list=Youtube
add address=173.194.6.242 comment="" disabled=no list=Youtube
add address=173.194.18.238 comment="" disabled=no list=Youtube
add address=173.194.6.42 comment="" disabled=no list=Youtube
add address=173.194.18.230 comment="" disabled=no list=Youtube
add address=74.125.97.27 comment="" disabled=no list=Youtube
add address=74.125.97.90 comment="" disabled=no list=Youtube
add address=208.117.244.154 comment="" disabled=no list=Youtube
add address=74.125.100.101 comment="" disabled=no list=Youtube
add address=74.125.208.87 comment="" disabled=no list=Youtube
add address=208.117.241.223 comment="" disabled=no list=Youtube
add address=173.194.18.208 comment="" disabled=no list=Youtube
add address=74.125.208.148 comment="" disabled=no list=Youtube
add address=74.125.8.225 comment="" disabled=no list=Youtube
add address=74.125.97.16 comment="" disabled=no list=Youtube
add address=195.59.171.16 comment="" disabled=no list=Youtube
add address=173.194.6.232 comment="" disabled=no list=Youtube
add address=74.125.99.146 comment="" disabled=no list=Youtube
add address=204.246.234.19 comment="" disabled=no list=Youtube
add address=74.125.99.151 comment="" disabled=no list=Youtube
add address=208.117.244.215 comment="" disabled=no list=Youtube
add address=173.194.18.234 comment="" disabled=no list=Youtube
add address=74.125.170.103 comment="" disabled=no list=Youtube
add address=208.117.241.103 comment="" disabled=no list=Youtube
add address=74.125.10.155 comment="" disabled=no list=Youtube
add address=74.125.97.86 comment="" disabled=no list=Youtube
add address=74.125.208.18 comment="" disabled=no list=Youtube
add address=74.125.99.159 comment="" disabled=no list=Youtube
add address=74.125.208.149 comment="" disabled=no list=Youtube
add address=74.125.97.21 comment="" disabled=no list=Youtube
add address=195.59.171.26 comment="" disabled=no list=Youtube
add address=74.125.208.20 comment="" disabled=no list=Youtube
add address=74.125.8.83 comment="" disabled=no list=Youtube
add address=74.125.99.229 comment="" disabled=no list=Youtube
add address=74.125.99.157 comment="" disabled=no list=Youtube
add address=173.194.6.178 comment="" disabled=no list=Youtube
add address=173.194.6.48 comment="" disabled=no list=Youtube
add address=173.194.6.166 comment="" disabled=no list=Youtube
add address=173.194.6.11 comment="" disabled=no list=Youtube
add address=208.117.244.208 comment="" disabled=no list=Youtube
add address=208.117.241.102 comment="" disabled=no list=Youtube
add address=195.59.171.20 comment="" disabled=no list=Youtube
add address=74.125.8.210 comment="" disabled=no list=Youtube
add address=173.194.6.151 comment="" disabled=no list=Youtube
add address=208.117.244.212 comment="" disabled=no list=Youtube
add address=74.125.100.98 comment="" disabled=no list=Youtube
add address=173.194.18.74 comment="" disabled=no list=Youtube
add address=173.194.18.245 comment="" disabled=no list=Youtube
add address=74.125.8.92 comment="" disabled=no list=Youtube
add address=74.125.8.85 comment="" disabled=no list=Youtube
add address=216.239.32.21 comment="" disabled=no list=Youtube
add address=74.125.15.99 comment="" disabled=no list=Youtube
add address=173.194.6.136 comment="" disabled=no list=Youtube
add address=74.125.15.90 comment="" disabled=no list=Youtube
add address=208.117.252.226 comment="" disabled=no list=Youtube
add address=74.125.15.150 comment="" disabled=no list=Youtube
add address=74.125.8.91 comment="" disabled=no list=Youtube
add address=74.125.15.36 comment="" disabled=no list=Youtube
add address=173.194.18.113 comment="" disabled=no list=Youtube
add address=173.194.6.6 comment="" disabled=no list=Youtube
add address=76.191.99.165 comment="" disabled=no list=Youtube
add address=74.125.15.103 comment="" disabled=no list=Youtube
add address=74.125.103.92 comment="" disabled=no list=Youtube
add address=188.165.223.40 comment="" disabled=no list=Youtube
add address=173.194.18.102 comment="" disabled=no list=Youtube
add address=208.117.241.30 comment="" disabled=no list=Youtube
add address=173.194.18.237 comment="" disabled=no list=Youtube
add address=173.194.6.13 comment="" disabled=no list=Youtube
add address=173.194.6.153 comment="" disabled=no list=Youtube
add address=173.194.6.139 comment="" disabled=no list=Youtube
add address=173.194.6.180 comment="" disabled=no list=Youtube
add address=173.194.6.104 comment="" disabled=no list=Youtube
add address=173.194.6.86 comment="" disabled=no list=Youtube
add address=173.194.6.9 comment="" disabled=no list=Youtube
add address=173.194.6.172 comment="" disabled=no list=Youtube
add address=173.194.18.249 comment="" disabled=no list=Youtube
add address=208.117.252.167 comment="" disabled=no list=Youtube
add address=74.125.15.102 comment="" disabled=no list=Youtube
add address=74.125.103.93 comment="" disabled=no list=Youtube
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=yes \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall mangle
add action=mark-routing chain=prerouting comment="rapidshare connections" \
disabled=yes dst-address-list=rapidshare-host new-routing-mark=rapidshare \
passthrough=yes protocol=tcp
add action=mark-packet chain=prerouting comment="" disabled=no \
dst-address-list=rapidshare-host new-packet-mark=rapid passthrough=no \
protocol=tcp
add action=mark-routing chain=prerouting comment=\
"rapidshare connections - host added by script" disabled=yes \
dst-address-list=rapidshare-host-script new-routing-mark=rapidshare \
passthrough=yes protocol=tcp
add action=mark-packet chain=prerouting comment="" disabled=no \
dst-address-list=rapidshare-host-script new-packet-mark=rapid \
passthrough=no protocol=tcp
add action=mark-routing chain=prerouting comment="youtube connections" \
disabled=yes dst-address-list=Youtube new-routing-mark=youtube \
passthrough=yes protocol=tcp
add action=mark-packet chain=prerouting comment="" disabled=no \
dst-address-list=Youtube new-packet-mark=youtube passthrough=no protocol=\
tcp
add action=mark-routing chain=prerouting comment="p2p route" disabled=yes \
new-routing-mark=p2p p2p=all-p2p passthrough=no
add action=mark-packet chain=prerouting comment="QoS wan2 Backup WAN 2 DOWN" \
disabled=yes in-interface=wan2 new-packet-mark=QoS1_wan2_Down \
passthrough=no protocol=icmp
add action=mark-packet chain=prerouting comment="" disabled=yes in-interface=\
wan2 new-packet-mark=QoS1_wan2_Down passthrough=no protocol=udp src-port=\
53
add action=mark-packet chain=prerouting comment="" disabled=yes in-interface=\
wan2 new-packet-mark=QoS1_wan2_Down passthrough=no protocol=tcp src-port=\
80,443
add action=mark-packet chain=prerouting comment="" disabled=yes in-interface=\
wan2 new-packet-mark=QoS8_wan2_Down passthrough=no
add action=mark-packet chain=postrouting comment="QoS wan2 Backup WAN 2 UP" \
disabled=yes dst-port=80,443 new-packet-mark=QoS_1_wan2_Up out-interface=\
wan2 packet-size=0-666 passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=postrouting comment="" disabled=yes dst-port=\
80,443 new-packet-mark=QoS_1_wan2_Up out-interface=wan2 packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=postrouting comment="" disabled=yes dst-port=\
53,123 new-packet-mark=QoS_1_wan2_Up out-interface=wan2 passthrough=no \
protocol=udp
add action=mark-packet chain=postrouting comment="" connection-bytes=\
0-1000000 disabled=yes dst-port=80,443 new-packet-mark=QoS_2_wan2_Up \
out-interface=wan2 passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment="" disabled=yes dst-port=\
110,995,143,993,25,20,21 new-packet-mark=QoS_2_wan2_Up out-interface=wan2 \
packet-size=0-666 passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=postrouting comment="" disabled=yes dst-port=\
110,995,143,993,25,20,21 new-packet-mark=QoS_2_wan2_Up out-interface=wan2 \
packet-size=0-666 passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=postrouting comment="" disabled=yes \
new-packet-mark=QoS_3_wan2_Up out-interface=wan2 packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=postrouting comment="" disabled=yes \
new-packet-mark=QoS_3_wan2_Up out-interface=wan2 packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=postrouting comment="" disabled=yes dst-port=\
110,995,143,993,25,20,21 new-packet-mark=QoS_4_wan2_Up out-interface=wan2 \
passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment="" connection-bytes=\
1000000-0 disabled=yes dst-port=80,443 new-packet-mark=QoS_4_wan2_Up \
out-interface=wan2 passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment="" disabled=yes \
new-packet-mark=QoS_8_wan2_Up out-interface=wan2 p2p=all-p2p passthrough=\
no
add action=mark-packet chain=postrouting comment="" disabled=yes \
new-packet-mark=QoS_7_wan2_Up out-interface=wan2 passthrough=no
add action=mark-packet chain=prerouting comment="WAN1 down QoS_1 DNS" \
disabled=yes in-interface=wan1 new-packet-mark=QoS_1_Down passthrough=no \
protocol=udp src-port=53,123
add action=mark-packet chain=prerouting comment=\
"QoS_1- skypeout - Layer7 Skype to phone - UDP voice call" disabled=yes \
in-interface=wan1 layer7-protocol=skypeout new-packet-mark=QoS_1_Down \
passthrough=no
add action=mark-packet chain=prerouting comment="QoS_1 ping" disabled=yes \
in-interface=wan1 new-packet-mark=QoS_1_Down passthrough=no protocol=icmp
add action=mark-packet chain=prerouting comment="QoS_1 ack 0-200" disabled=\
yes in-interface=wan1 new-packet-mark=QoS_1_Down packet-size=0-200 \
passthrough=yes protocol=tcp src-port=80,443 tcp-flags=ack
add action=mark-packet chain=prerouting comment="QoS_1 syn 0-200" disabled=\
yes in-interface=wan1 new-packet-mark=QoS_1_Down packet-size=0-200 \
passthrough=yes protocol=tcp src-port=80,443 tcp-flags=syn
add action=mark-packet chain=prerouting comment=\
"QoS_1- skypetoskype Layer7 - Skype to Skype - UDP voice call" disabled=\
yes in-interface=wan1 layer7-protocol=skypetoskype new-packet-mark=\
QoS_1_Down passthrough=no
add action=mark-packet chain=prerouting comment="QoS_2 syn 0-666" disabled=\
yes in-interface=wan1 new-packet-mark=QoS_2_Down packet-size=0-666 \
passthrough=no protocol=tcp src-port=110,995,143,993,25,20,21 tcp-flags=\
syn
add action=mark-packet chain=prerouting comment="QoS_2 ack 0-666" disabled=\
yes in-interface=wan1 new-packet-mark=QoS_2_Down packet-size=0-666 \
passthrough=no protocol=tcp src-port=110,995,143,993,25,20,21 tcp-flags=\
ack
add action=mark-packet chain=prerouting comment="QoS_3 syn 0-666" disabled=\
yes in-interface=wan1 new-packet-mark=QoS_3_Down packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=prerouting comment="QoS_3 ack 0-666" disabled=\
yes in-interface=wan1 new-packet-mark=QoS_3_Down packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=prerouting comment=\
"QoS_4 conn bytes 0-1000000 math first 1mb" connection-bytes=0-1000000 \
disabled=yes in-interface=wan1 new-packet-mark=QoS_4_Down passthrough=no \
protocol=tcp src-port=80,443
add action=mark-packet chain=prerouting comment="QoS_5 news" disabled=yes \
in-interface=wan1 new-packet-mark=QoS_5_Down passthrough=no protocol=tcp \
src-port=119
add action=mark-packet chain=prerouting comment=\
"QoS_6 conn bytes 1200000-0 match above 1mb supose download" \
connection-bytes=1200000-0 disabled=yes in-interface=wan1 \
new-packet-mark=QoS_6_Down passthrough=no protocol=tcp src-port=80,443
add action=mark-packet chain=prerouting comment="QoS_7 p2p" disabled=yes \
in-interface=wan1 new-packet-mark=torrent_in p2p=all-p2p passthrough=no \
protocol=tcp
add action=mark-packet chain=prerouting comment="QoS_8 other" disabled=yes \
in-interface=wan1 new-packet-mark=QoS_8_Down passthrough=no
add action=mark-packet chain=postrouting comment="QoS upload wan1" disabled=\
no dst-port=80,443 new-packet-mark=QoS_1_Up out-interface=wan1 \
packet-size=0-666 passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=postrouting comment="" disabled=no dst-port=\
80,443 new-packet-mark=QoS_1_Up out-interface=wan1 packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=postrouting comment="" disabled=no dst-port=\
53,123 new-packet-mark=QoS_1_Up out-interface=wan1 passthrough=no \
protocol=udp
add action=mark-packet chain=postrouting comment="" connection-bytes=\
0-1000000 disabled=no dst-port=80,443 new-packet-mark=QoS_2_Up \
out-interface=wan1 passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment="" disabled=no dst-port=\
110,995,143,993,25,20,21 new-packet-mark=QoS_2_Up out-interface=wan1 \
packet-size=0-666 passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=postrouting comment="" disabled=no dst-port=\
110,995,143,993,25,20,21 new-packet-mark=QoS_2_Up out-interface=wan1 \
packet-size=0-666 passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=postrouting comment="" disabled=no \
new-packet-mark=QoS_3_Up out-interface=wan1 packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=syn
add action=mark-packet chain=postrouting comment="" disabled=no \
new-packet-mark=QoS_3_Up out-interface=wan1 packet-size=0-666 \
passthrough=no protocol=tcp tcp-flags=ack
add action=mark-packet chain=postrouting comment="" disabled=no dst-port=\
110,995,143,993,25,20,21 new-packet-mark=QoS_4_Up out-interface=wan1 \
passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment="" connection-bytes=\
1000000-0 disabled=no dst-port=80,443 new-packet-mark=QoS_4_Up \
out-interface=wan1 passthrough=no protocol=tcp
add action=mark-packet chain=postrouting comment="" disabled=no \
new-packet-mark=QoS_8_Up out-interface=wan1 p2p=all-p2p passthrough=no
add action=mark-packet chain=postrouting comment="" disabled=no \
new-packet-mark=QoS_7_Up out-interface=wan1 passthrough=no
add action=mark-connection chain=prerouting comment="" disabled=no dst-port=\
8291,58291,58292,58293,58294 new-connection-mark=WinBox passthrough=yes \
protocol=tcp
add action=mark-packet chain=postrouting comment="" connection-mark=WinBox \
disabled=no new-packet-mark=QoS_2_Up out-interface=wan1 passthrough=no
/ip firewall nat
add action=masquerade chain=srcnat comment="masquerade public network" \
disabled=no src-address=192.168.11.0/24
add action=redirect chain=dstnat comment="intercept all DNS requests" \
disabled=no dst-port=53 protocol=udp
add action=redirect chain=dstnat comment="transparent proxy - hotspot net" \
disabled=yes dst-port=80 protocol=tcp src-address=192.168.3.0/24 \
to-ports=3130
add action=redirect chain=dstnat comment="transparent proxy - public net" \
disabled=yes dst-port=80 protocol=tcp src-address=192.168.11.0/24 \
to-ports=3130
add action=dst-nat chain=dstnat comment=\
"transparent redirect - Ashole - radi" disabled=yes dst-port=80 protocol=\
tcp src-address=192.168.3.74 to-addresses=192.168.11.200 to-ports=80
add action=dst-nat chain=dstnat comment=\
"transparent redirect to proxy - Youtube connections" disabled=yes \
dst-port=80 protocol=tcp src-address=192.168.3.26 to-addresses=\
192.168.11.200 to-ports=3130
add action=dst-nat chain=dstnat comment="server web - 80" disabled=no \
dst-port=80 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=80
add action=dst-nat chain=dstnat comment="server smpt - 25" disabled=no \
dst-port=25 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=25
add action=dst-nat chain=dstnat comment="server pop - 110" disabled=no \
dst-port=110 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=110
add action=dst-nat chain=dstnat comment="server news 119" disabled=no \
dst-port=119 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=119
add action=dst-nat chain=dstnat comment="FTP Server" disabled=no dst-port=21 \
in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 to-ports=20-21
add action=dst-nat chain=dstnat comment="UltraVNC Viewer 5900 " disabled=no \
dst-port=5900 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=5900
add action=dst-nat chain=dstnat comment="UltraVNC Viewer 5900 " disabled=no \
dst-port=5900 in-interface=wan1 protocol=tcp to-addresses=192.168.11.149 \
to-ports=5900
add action=dst-nat chain=dstnat comment=igrica disabled=no dst-port=28960 \
in-interface=wan1 protocol=udp to-addresses=192.168.3.47 to-ports=28960
add action=dst-nat chain=dstnat comment=igrica disabled=no dst-port=20800 \
in-interface=wan1 protocol=udp to-addresses=192.168.3.47 to-ports=20800
add action=dst-nat chain=dstnat comment=igrica disabled=no dst-port=20810 \
in-interface=wan1 protocol=udp to-addresses=192.168.3.47 to-ports=20810
add action=dst-nat chain=dstnat comment="torent 6880 \B5Torrent" disabled=no \
dst-port=6880 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=6881
add action=dst-nat chain=dstnat comment="torent 6880 \B5Torrent" disabled=no \
dst-port=6880 in-interface=wan1 protocol=udp to-addresses=192.168.11.200 \
to-ports=6881
add action=dst-nat chain=dstnat comment="torent 1005 bitTorrent" disabled=no \
dst-port=1005 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=1005
add action=dst-nat chain=dstnat comment="torent 1005 bitTorrent" disabled=no \
dst-port=1005 in-interface=wan1 protocol=udp to-addresses=192.168.11.200 \
to-ports=1005
add action=dst-nat chain=dstnat comment="e mule" disabled=no dst-port=17322 \
in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 to-ports=6881
add action=dst-nat chain=dstnat comment="server mysql - 3306" disabled=no \
dst-port=3306 in-interface=wan1 protocol=tcp to-addresses=192.168.11.200 \
to-ports=3306
add action=dst-nat chain=dstnat comment="server web - 80 backup WAN2" \
disabled=no dst-port=80 in-interface=wan2 protocol=tcp to-addresses=\
192.168.11.200 to-ports=80
add action=dst-nat chain=dstnat comment="server smpt - 25 backup WAN2" \
disabled=no dst-port=25 in-interface=wan2 protocol=tcp to-addresses=\
192.168.11.200 to-ports=25
add action=dst-nat chain=dstnat comment="server pop - 110 backup WAN2" \
disabled=no dst-port=110 in-interface=wan2 protocol=tcp to-addresses=\
192.168.11.200 to-ports=110
add action=dst-nat chain=dstnat comment="torent 6881 \B5Torrent" disabled=no \
dst-port=6881 in-interface=wan2 protocol=tcp to-addresses=192.168.11.200 \
to-ports=6881
add action=dst-nat chain=dstnat comment="torent 6881 \B5Torrent" disabled=no \
dst-port=6881 in-interface=wan2 protocol=udp to-addresses=192.168.11.200 \
to-ports=6881
add action=dst-nat chain=dstnat comment=\
"transparent redirect news.wisp.hr to news.wisp.hr 1119" disabled=yes \
dst-address=192.168.11.200 dst-port=119 in-interface=wan2 protocol=tcp \
to-addresses=192.168.11.200 to-ports=1119
add action=dst-nat chain=dstnat comment=\
"transparent redirect news.wisp.hr to nntp.amis.hr" disabled=yes \
dst-address=192.168.11.200 dst-port=119 in-interface=wan2 protocol=tcp \
to-addresses=194.146.109.132 to-ports=119
add action=dst-nat chain=dstnat comment=\
"transparent redirect news.wisp.hr to proxy news.carnet.hr" disabled=yes \
dst-address=192.168.11.200 dst-port=119 in-interface=wan2 protocol=tcp \
to-addresses=192.168.11.200 to-ports=141
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061
set pptp disabled=no
also hotspot is now empty
/ip hotspot profile
set default dns-name="" hotspot-address=0.0.0.0 html-directory=hotspot.hr \
http-proxy=0.0.0.0:0 login-by=http-chap name=default rate-limit="" \
smtp-server=0.0.0.0 split-user-domain=no use-radius=no
/ip hotspot user profile
set default idle-timeout=10m keepalive-timeout=10m name=default rate-limit=128k/2M \
shared-users=1 status-autorefresh=1m transparent-proxy=no
/ip hotspot service-port
set ftp disabled=no ports=21
Also when im try to make upload queue tree same thing is hapening route desapears !
Disabling queue tree and route is again back !
Well it looks that I find error which couse this … in previous setup I have this:
/ip route print detail
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
0 A S ;;; wan1 amis
dst-address=0.0.0.0/0 gateway=192.168.12.1
gateway-status=192.168.12.1 reachable wan1 check-gateway=arp distance=1
scope=30 target-scope=30
Now im change into default (Im think that is default values)
/ip route print detail
3 A S ;;; amis
dst-address=0.0.0.0/0 gateway=192.168.12.1
gateway-status=192.168.12.1 reachable wan1 check-gateway=ping
distance=1 scope=255 target-scope=10
Like you see Im change scope and target scope and now is fine … RB450 lusing route only somethimes when CPU is going on 100% … x86 router not lusing for now … I will check this in production later.
Well this info will maybe be usefull somebody 